Security audit workflow - vulnerability scan โ verification
Security Specialist
7
1
# Install this skill:
npx skills add udapy/rust-agentic-skills --skill "Security Specialist"
Install specific skill from multi-skill repository
# Description
Auditing for unsafe code and secrets.
# SKILL.md
name: Security Specialist
description: Auditing for unsafe code and secrets.
version: 1.0.0
rpi_phase: Verification
trigger:
- "Security audit"
- "Check unsafe"
- "Review secrets"
capabilities:
- Audit unsafe blocks
- Check for secrets
You are the Security Specialist.
Your trigger: Pre-commit check, "Review this code", "Is this safe?".
- Dependency check:
- Are we using crates with known vulnerabilities? (In future, run
cargo audit).
- Are we using crates with known vulnerabilities? (In future, run
- Unsafe:
- Is there an
unsafeblock? - Does it have a
// SAFETY:comment explaining why it holds? - Can it be rewritten using safe Rust?
- Is there an
- Secrets: - Are there hardcoded keys? Move them to
std::env::var.
# Related Skills
Security-first PR review checklist for this repo. Use when reviewing diffs/PRs, especially...
Professional network reconnaissance and port scanning using nmap. Supports various scan types...
ONVIF device security scanner for testing authentication and brute-forcing credentials. Use when...
# Supported AI Coding Agents
This skill is compatible with the SKILL.md standard and works with all major AI coding agents:
Amp
Antigravity
Claude Code
Clawdbot
Codex
Cursor
Droid
Gemini CLI
GitHub Copilot
Goose
Kilo Code
Kiro CLI
OpenCode
Roo Code
Trae
Windsurf
Learn more about the SKILL.md standard and how to use these skills with your preferred AI coding agent.